50c1714c4b7a596bb913d7283d38cb949eea855ac3ca33f7df11987238c0f4a4[.]zip

Resubmissions

29/05/2023, 18:42

230529-xcj9lade2t 7

29/05/2023, 18:40

230529-xbggbada86 7

Sharing

Copy URL Twitter E-mail

General

Target

50c1714c4b7a596bb913d7283d38cb949eea855ac3ca33f7df11987238c0f4a4.zip
Size

7.8MB
MD5

6b5f988daa289cfc8e7725b38a74cf2b
SHA1

882bd4a3dd693c1e46a1fc98ff318dc0b61e3ee9
SHA256

8ca3269ac296bb86beab30ad5335499e57828a0a3dfde077c464f19a6f681cba
SHA512

82c261fe8c65630dedfa9a5dfd0edc847fd2c0bc57dd5c7b022c43d2c44192013c961f52d4e595ca9bf8d7540100ac53be2453ff32ddd971231425ca523a3118
SSDEEP

196608:YoblMt/fJOOnJPJr6ZoLqzBHoOnk1Hjmp/SkjZEI6Cm:befJ1Jxr6SLqFHoOnk1Hjmp/SkjIn

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

50c1714c4b7a596bb913d7283d38cb949eea855ac3ca33f7df11987238c0f4a4.zip
.zip

Password: infected
50c1714c4b7a596bb913d7283d38cb949eea855ac3ca33f7df11987238c0f4a4
.apk android

Password: infected

pl.damianpiwowarski.navbarapps

pl.damianpiwowarski.navbarapps.StartActivity_

Activities

pl.damianpiwowarski.navbarapps.StartActivity_

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.BIND_ACCESSIBILITY_SERVICE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
com.android.vending.BILLING
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WRITE_SECURE_SETTINGS
android.permission.PACKAGE_USAGE_STATS
com.google.android.c2dm.permission.RECEIVE
pl.damianpiwowarski.navbarapps.permission.C2D_MESSAGE

Receivers

pl.damianpiwowarski.navbarapps.utils.OnBootReceiver_

android.intent.action.BOOT_COMPLETED
android.intent.action.REBOOT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.MY_PACKAGE_REPLACED
android.intent.action.QUICKBOOT_POWERON
android.intent.action.QUICKBOOT_POWEROFF

Services

pl.damianpiwowarski.navbarapps.service.AccessibilityDetectingService_

android.accessibilityservice.AccessibilityService

pl.damianpiwowarski.navbarapps.service.TileShowService

android.service.quicksettings.action.QS_TILE
SCRIPTBL.TTF
app-keyboardmodule.apk
.apk android

Password: infected

pl.damianpiwowarski.keyboardetection

pl.damianpiwowarski.keyboardetection.MainActivity_

Activities

pl.damianpiwowarski.keyboardetection.MainActivity_

android.intent.action.MAIN

Permissions

android.permission.SYSTEM_ALERT_WINDOW

Services
emojis.json

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

pl.damianpiwowarski.navbarapps

pl.damianpiwowarski.navbarapps.StartActivity_

Activities

pl.damianpiwowarski.navbarapps.StartActivity_

Permissions

Receivers

pl.damianpiwowarski.navbarapps.utils.OnBootReceiver_

Services

pl.damianpiwowarski.navbarapps.service.AccessibilityDetectingService_

pl.damianpiwowarski.navbarapps.service.TileShowService

Password: infected

pl.damianpiwowarski.keyboardetection

pl.damianpiwowarski.keyboardetection.MainActivity_

Activities

pl.damianpiwowarski.keyboardetection.MainActivity_

Permissions

Services